Information technology - Open systems interconnection - Part 8: The Directory: Public-key and attribute certificate frameworks - Technical Corrigendum 1

Technologies de l'information — Interconnexion de systèmes ouverts (OSI) — Partie 8: Titre manque — Rectificatif technique 1

General Information

Status
Published
Publication Date
16-Dec-2021
ICS
35.100.70 - Application layer
Technical Committee
ISO/IEC JTC 1/SC 6 - Telecommunications and information exchange between systems
Drafting Committee
ISO/IEC JTC 1/SC 6/WG 10 - Directory, ASN.1 and Registration
Current Stage
6060 - International Standard published
Start Date
17-Dec-2021
Completion Date
17-Dec-2021

Relations

Corrects
ISO/IEC 9594-8:2020 - Information technology - Open systems interconnection - Part 8: The Directory: Public-key and attribute certificate frameworks
Effective Date
01-Jan-2022

Overview

ISO/IEC 9594-8:2020/Cor 1:2021 is a technical corrigendum to the international standard ISO/IEC 9594-8:2020, related to information technology and open systems interconnection. This part-commonly known as The Directory: Public-key and Attribute Certificate Frameworks-focuses on the frameworks supporting the use of public-key cryptography and attribute certificates within directory services. Published jointly by ISO, IEC, and ITU-T, the corrigendum ensures precision and correctness by addressing key technical defects identified after the original 2020 release.

This corrigendum updates and refines the specification of cryptographic algorithms and related ASN.1 data structures, crucial for security protocols and digital authentication processes across telecom and IT systems worldwide.

Key Topics

  • Cryptographic Algorithm Specification:

    • Redefines the ASN.1 OBJECT CLASS ALGORITHM to specify cryptographic algorithms using:
      • &Type for fixed parameters
      • &DynParms for dynamic parameters exchanged during algorithm invocation
      • &id as a unique object identifier
    • Introduces parameterized data types like AlgorithmWithInvoke, AlgorithmIdentifier, and AlgoInvoke to manage algorithm invocation and identification explicitly.

  • Correction of Algorithm Naming and Parameters:

    • Updates naming conventions for RSA-based signature algorithms combining SHA hash functions with RSA encryption in Annex B. Notably, earlier references such as sha224WithRSAEncryptionAlgorithm are replaced with sha224RSA consistent with RFC 4055.

  • Interoperability and Compliance:

    • Supports the standardization goals of ISO, IEC, and ITU-T to enhance secure data exchange and interoperability in telecommunications and information exchange between heterogeneous systems.
    • Emphasizes the importance of compliance with mandatory provisions for achieving interoperability.

  • Collaboration with ITU-T:

    • This corrigendum is published identically as ITU-T Recommendation X.509 (2019)/Cor.1, highlighting the close cooperation between ISO/IEC JTC 1/SC 6 and ITU-T Study Group 17 on cybersecurity standards.

Applications

ISO/IEC 9594-8:2020/Cor 1:2021 plays a vital role in the implementation and maintenance of secure digital infrastructures by providing standardized frameworks for:

  • Public-key Infrastructure (PKI):

    • Enables certificate issuance, validation, and management through well-defined cryptographic algorithm parameters.
    • Supports secure communication protocols including SSL/TLS, digital signatures, and encryption services.

  • Attribute Certificate Management:

    • Facilitates attribute-based access control (ABAC) by providing frameworks to bind attributes to entities securely.
    • Useful in identity management systems across governmental, enterprise, and cloud environments.

  • Telecommunications Security:

    • Assists telecom operators and service providers to implement globally recognized directory services leveraging secure public-key algorithms.
    • Ensures secure identity authentication and authorization across networked systems.

  • Cryptographic Software Development:

    • Guides developers in implementing correct ASN.1 encoding for cryptographic algorithms in compliance with internationally approved standards.
    • Helps avoid security flaws caused by ambiguous or inconsistent algorithm specifications.

Related Standards

  • ISO/IEC 9594 Series:

    • Other parts cover directory services, naming, access control, and security mechanisms in Open Systems Interconnection (OSI).

  • ITU-T X.509 Recommendations:

    • The foundational documents for public-key certificate frameworks widely adopted in cybersecurity protocols.

  • RFC 4055:

    • Defines the algorithm identifiers for RSA with SHA hashing functions, referenced and aligned in the corrigendum.

  • ISO/IEC Directives, Part 1 and Part 2:

    • Outline the procedures and editorial rules followed during the preparation and maintenance of international standards like ISO/IEC 9594-8.

  • Other ISO/IEC JTC 1 Subcommittee 6 Standards:

    • Standards dealing with telecommunications and information exchange between systems.

ISO/IEC 9594-8:2020/Cor 1:2021 is essential for IT security professionals, telecommunication engineers, and software developers involved in the design and implementation of robust cryptographic systems and digital identity solutions. Its precise definitions and corrections foster the interoperability and security of public-key infrastructures globally. For comprehensive understanding and implementation, stakeholders should refer to the full corrigendum text and associated ISO/IEC and ITU-T publications.

Frequently Asked Questions

ISO/IEC 9594-8:2020/Cor 1:2021 is a standard published by the International Organization for Standardization (ISO). Its full title is "Information technology - Open systems interconnection - Part 8: The Directory: Public-key and attribute certificate frameworks - Technical Corrigendum 1". This standard covers: Information technology - Open systems interconnection - Part 8: The Directory: Public-key and attribute certificate frameworks - Technical Corrigendum 1

Information technology - Open systems interconnection - Part 8: The Directory: Public-key and attribute certificate frameworks - Technical Corrigendum 1

ISO/IEC 9594-8:2020/Cor 1:2021 is classified under the following ICS (International Classification for Standards) categories: 35.100.70 - Application layer. The ICS classification helps identify the subject area and facilitates finding related standards.

ISO/IEC 9594-8:2020/Cor 1:2021 has the following relationships with other standards: It is inter standard links to ISO/IEC 9594-8:2020. Understanding these relationships helps ensure you are using the most current and applicable version of the standard.

You can purchase ISO/IEC 9594-8:2020/Cor 1:2021 directly from iTeh Standards. The document is available in PDF format and is delivered instantly after payment. Add the standard to your cart and complete the secure checkout process. iTeh Standards is an authorized distributor of ISO standards.

Standards Content (Sample)


INTERNATIONAL STANDARD ISO/IEC 9594-8:2020
TECHNICAL CORRIGENDUM 1
Published 2021-12
INTERNATIONAL ORGANIZATION FOR STANDARDIZATION • МЕЖДУНАРОДНАЯ ОРГАНИЗАЦИЯ ПО СТАНДАРТИЗАЦИИ • ORGANISATION INTERNATIONALE DE NORMALISATION
INTERNATIONAL ELECTROTECHNICAL COMMISSION • МЕЖДУНАРОДНАЯ ЭЛЕКТРОТЕХНИЧЕСКАЯ КОМИССИЯ • COMMISSION ÉLECTROTECHNIQUE INTERNATIONALE
Information technology — Open systems interconnection —
Part 8:
The Directory: Public-key and attribute certificate frameworks
TECHNICAL CORRIGENDUM 1
Technical Corrigendum 1 to ISO/IEC 9594-8:2020 was prepared by Joint Technical Committee ISO/IEC JTC 1,
Information technology, Subcommittee SC 6, Telecommunications and information exchange between systems,
in collaboration with ITU-T. The identical text is published as ITU-T X.509 (2019)/Cor.1 (10/2021).
ICS 35.100.70 Ref. No. ISO/IEC 9594-8:2020/Cor.1:2021(E)
©  ISO/IEC 2021 – All rights reserved
Published in Switzerland
ISO/IEC 9594-8:2020/Cor.1:2021(E)
Foreword
ISO (the International Organization for Standardization) and IEC (the International Electrotechnical
Commission) form the specialized system for worldwide standardization. National bodies that are
members of ISO or IEC participate in the development of International Standards through technical
committees established by the respective organization to deal with particular fields of technical activity.
ISO and IEC technical committees collaborate in fields of mutual interest. Other international
organizations, governmental and non-governmental, in liaison with ISO and IEC, also take part in the
work.
The procedures used to develop this document and those intended for its further maintenance are
described in the ISO/IEC Directives, Part 1. In particular, the different approval criteria needed for the
different types of document should be noted. This document was drafted in accordance with the editorial
rules of the ISO/IEC Directives, Part 2 (see www.iso.org/directives or
www.iec.ch/members_experts/refdocs).
Attention is drawn to the possibility that some of the elements of this document may be the subject of
patent rights. ISO and IEC shall not be held responsible for identifying any or all such patent rights. Details
of any patent rights identified during the development of the document will be in the Introduction and/or
on the ISO list of patent declarations received (see www.iso.org/patents) or the IEC list of patent
declarations received (see https://patents.iec.ch).
Any trade name used in this document is information given for the convenience of users and does not
constitute an endorsement.
For an explanation of the voluntary nature of standards, the meaning of ISO specific terms and
expressions related to conformity assessment, as well as information about ISO's adherence to the World
Trade Organization (WTO) principles in the Technical Barriers to Trade (TBT)
see www.iso.org/iso/foreword.html. In the IEC, see www.iec.ch/understanding-standards.
This document was prepared by ITU-T [as ITU-T REC. X.509 (2019) – Technical Corrigendum 1 (2020)]
and drafted in accordance with its editorial rules, in collaboration with Joint Technical Committee
ISO/IEC JTC 1, Information technology, Subcommittee SC 6, Telecommunications and information
exchange between systems.
A list of all parts in the ISO/IEC 9594 series can be found on the ISO and IEC websites.
Any feedback or questions on this document should be directed to the user’s national standards body. A
complete listing of these bodies can be found at www.iso.org/members.html and www.iec.ch/national-
committees.
ii ©  ISO/IEC 2021 – All rights reserved

ISO/IEC 9594-8:2020/Cor.1:2021(E)
Information technology – Open Systems Interconnection – The Directory: Public-key and
attribute certificate frameworks
Technical Corrigendum 1
Summary
Corrigendum 1 to Rec. ITU-T X.509 (2019) | ISO/IEC 9594-8:2020 has successfully been balloted within ISO/IEC and
therefore finally been approved by ISO/IEC.
History
*
Edition Recommendation Approval Study Group Unique ID
1.0 ITU-T X.509 1988-11-25 11.1002/1000/2999
2.0 ITU-T X.509 1993-11-16 7 11.1002/1000/3000
3.0 ITU-T X.509 1997-08-09 7 11.1002/1000/4123
3.1 ITU-T X.509 (1997) Technical Cor. 1 2000-03-31 7 11.1002/1000/5033
3.2 ITU-T X.509 (1997) Technical Cor. 2 2001-02-02 7 11.1002/1000/5311
3.3 ITU-T X.509 (1997) Technical Cor. 3 2001-10-29 7 11.1002/1000/5559
3.4 ITU-T X.509 (1997) Technical Cor. 4 2002-04-13 17 11.1002/1000/6025
3.5 ITU-T X.509 (1997) Technical Cor. 5 2003-02-13 17 11.1002/1000/6236
3.6 ITU-T X.509 (1997) Technical Cor. 6 2004-04-29 17 11.1002/1000/7285
4.0 ITU-T X.509 2000-03-31 7 11.1002/1000/5034
4.1 ITU-T X.509 (2000) Technical Cor. 1 2001-10-29 7 11.1002/1000/5560
4.2 ITU-T X.509 (2000) Technical Cor. 2 2002-04-13 17 11.1002/1000/6026
4.3 ITU-T X.509 (2000) Technical Cor. 3 2004-04-29 17 11.1002/1000/7284
4.4 ITU-T X.509 (2000) Technical Cor. 4 2007-01-13 17 11.1002/1000/8637
5.0 ITU-T X.509 2005-08-29 17 11.1002/1000/8501
5.1 ITU-T X.509 (2005) Cor. 1 2007-01-13 17 11.1002/1000/9051
5.2 ITU-T X.509 (2005) Cor. 2 2008-11-13 17 11.1002/1000/9591
5.3 ITU-T X.509 (2005) Cor. 3 2011-02-13 17 11.1002/1000/11042
5.4 ITU-T X.509 (2005) Cor. 4 2012-04-13 17 11.1002/1000/11577
6.0 ITU-T X.509 2008-11-13 17 11.1002/1000/9590
6.1 ITU-T X.509 (2008) Cor. 1 2011-02-13 17 11.1002/1000/11043
6.2 ITU-T X.509 (2008) Cor. 2 2012-04-13 17 11.1002/1000/11578
6.3 ITU-T X.509 (2008) Cor. 3 2012-10-14 17 11.1002/1000/11736
7.0 ITU-T X.509 2012-10-14 17 11.1002/1000/11735
7.1 ITU-T X.509 (2012) Cor. 1 2015-05-29 17 11.1002/1000/12474
7.2 ITU-T X.509 (2012) Cor. 2 2016-04-29 17 11.1002/1000/12844
7.3 ITU-T X.509 (2012) Cor. 3 2016-10-14 17 11.1002/1000/13032
8.0 ITU-T X.509 2016-10-14 17 11.1002/1000/13031
9.0 ITU-T X.509 2019-10-14 17 11.1002/1000/14033
9.1 ITU-T X.509 (2019) Cor. 1 2021-10-14 17 11.1002/1000/14791
Keywords
Cryptographic algorithm, object identifier
____________________
*
To access the Recommendation, type the URL http://handle.itu.int/ in the address field of your web browser, followed by the
Recommendation's unique ID. For example, http://handle.itu.int/11.1002/1000/11830-en.
Rec. ITU-T X.509 (2019)/Cor.1 (10/2021)
©  ISO/IEC 2021 – All rights reserved iii

ISO/IEC 9594-8:2020/Cor.1:2021(E)
FOREWORD
The International Telecommunication Union (ITU) is the United Nations specialized agency in the field of
telecommunications, information and communication technologies (ICTs). The ITU Telecommunication
Standardization Sector (ITU-T) is a permanent organ of ITU. ITU-T is responsible for studying technical,
operating and tariff questions and issuing Recommendations on them with a view to standardizing
telecommunications on a worldwide basis.
The World Telecommunication Standardization Assembly (WTSA), which meets every four years, establishes
the topics for study by the ITU-T study groups which, in turn, produce Recommendations on these topics.
The app
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.

Loading comments...